Weekly Security Sprint EP 74. Information sharing and resiliency; Crowdstrike, MDM, and Health

In this weeks Security Sprint, Dave and Andy covered the following topics: Warm Start: · FB-ISAO Releases an All-Faiths Analysis of Attacks on U.S. Houses of Worship in 2023. · New Cyware Survey Reveals Critical Gaps in Cybersecurity Threat Intelligence Sharing and Collaboration. · Private-public partnership releases new bank resources for cloud computing adoption. o Financial Sector Cloud Outsourcing Issues and Considerations. Main Topics: CrowdStrike Outage: · CISA: Widespread IT Outage Due to CrowdStrike Update (being updated; update 9:45 a.m., EDT, July 21, 2024) · Canadian Centre for Cyber Security - Alert - Issue impacting CrowdStrike Falcon EDR · UK NCSC: Statement on major IT outage · NZ-NCSC: NCSC statement on global IT outage · CrowdStrike says significant number of devices back online after global outage. o Technical Details: Falcon Content Update for Windows Hosts, 20 Jul · Microsoft: New Recovery Tool to help with CrowdStrike issue impacting Windows endpoints · CrowdStrike CEO George Kurtz speaks out after failed tech update causes worldwide chaos at airports and banks · Microsoft says 8.5M Windows devices were affected by CrowdStrike outage · Brian Krebs: Global Microsoft Meltdown Tied to Bad Crowdstrike Update · Blue Screens Everywhere Are Latest Tech Woe for Microsoft · Don’t Fall for CrowdStrike Outage Scams Donald Trump Assassination Attempt & Associated Physical Security: · FBI, DHS warn of possible retaliation for attack on Trump. · Trump’s would-be assassin researched previous mass shooter Ethan Crumbley and his family before attack. · Gunman Might Have Scoped Out Site Six Days Before Trump Rally. · Secret Service Arrests Florida Man Threatening to Kill Joe Biden. · Roswell Man Indicted for Threatening FBI Director Christopher Wray. · Secretary Mayorkas Delivers Remarks at White House Press Briefing. · TIME: What We Know—and Don’t Know—So Far About the Trump Rally Gunman · Militias Are Recruiting Off of the Trump Shooting Misinfo: o Conspiracy theories spread wildly after the first assassination attempt on a US president in the social media age o One in Three Biden Supporters Think Trump Shooting Might Have Been Staged o 4chan post claiming Secret Service told not to fire on Trump shooter explodes into full-on TikTok conspiracy o Top Conspiracy Theories Around Trump Assassination Attempt Debunked Health: · CDC Confirms Human Cases of H5 Bird Flu Among Colorado Poultry Workers. · In 2 years since the launch of 988, 10 million contacts have been answered · Global childhood vaccination hits plateau, with 35 million not fully protected from measles · UK Covid-19 Inquiry: Resilience and preparedness (Module 1) Ransomware: · CDK hack shows SEC disclosure standards are unsettled · ReliaQuest: Ransomware and Cyber Extortion in Q2 2024 · California officials say largest trial court in US victim of ransomware attack. · Two Foreign Nationals Plead Guilty to Participating in LockBit Ransomware Group Quick Hits: · China seeks space supremacy and to exploit it ‘to our detriment’: US intelligence head · US to issue proposed rules limiting Chinese vehicle software in August · Fragmented and multiplied cybercriminal landscape, warns new Europol report · Europol: Internet Organised Crime Threat Assessment (IOCTA) 2024. · Patagonia invaded privacy by using AI to analyze customer service interactions, lawsuit alleges · CISA Releases Playbook for Infrastructure Resilience Planning. · Software Bill of Materials (SBOM) FAQ Resource. · Why the Pentagon Is Warning That ISIS Attacks Could Double This Year · US says ISIL trying ‘to reconstitute’ amid uptick in Syria, Iraq attacks · Neo-Nazi group demonstrates on Tennessee overpass